Has OLAF, the European Anti-fraud Office now been reformed, after they persecuted a German journalist Hans-Martin Tillack, trying to get him to reveal his whistleblower sources within their own organisation ?
In line with the applicable legislation, OLAF has always investigated anonymous reports, but until now had to subject them to stricter preliminary scrutiny in order to prevent abuse. In the process, OLAF investigators regularly face the practical problem of being unable – inevitable with anonymous informants - to ask questions in order to obtain clarification.
This problem is solved by the Fraud Notification System, since the latest technical safeguards both guarantee informants absolute anonymity and at the same time enable them, if they so wish, to enter into dialogue with OLAF investigators. No one, either inside or outside OLAF, can discover the identity of anyone who has opted to remain anonymous. The system operates like a 'blind' letterbox where both parties can drop off messages.
For OLAF investigators, this has the advantage of helping them better to assess the credibility of anonymous reports of corruption and fraud and also makes abuse of the system much more difficult.
At the same time, the system enables potential informants who have so far not dared to contact OLAF to enter into a genuine dialogue with experienced investigators. Although EU staff who report suspicious circumstances and provide evidence are protected against reprisals of any kind, under the current rules of service individual colleagues who are unsure about how allegations of corruption or fraud are assessed might hesitate to contact OLAF. The new system makes it easier for such colleagues them to make contact.
During a pilot phase the Fraud Notification System will be available in English, French, German and Dutch.
- Press inquiries
Communication, PR and Spokesman Unit
- General inquiries
- telephone: Freephone numbers in each of the 27 European Union countries
Austria : 0800 295 845
Belgium : 0800 1 24 26
Bulgaria: 00800 01 05 20 04
Denmark : 800 18 495
Finland : 0800 112 595
France : 0800 917 295
Germany : 0800 182 0595
Greece : 00800 321 2595
Ireland : 1 800 553 295
Italy : 800 878 495
Luxembourg : 0800 35 95
Netherlands: 0800 02 245 95
Portugal : 800 832 595
Romania : 0800 895 133
Spain : 900 993 295
Sweden : 02 079 1695
U.K. : 0800 963 595
Countries with the following number: 00800 01 05 20 04 do not have a national free-phone but a Universal International Freephone Number (UIFN). Please verify if your operator supports UIFN
Latvia: 00800 01 05 20 04
Lithuania: 00800 01 05 20 04
Malta : 00800 01 05 20 04
Poland : 00800 01 05 20 04
Slovakia : 00800 01 05 20 04
Slovenia : 00800 01 05 20 04
Cyprus : 00800 01 05 20 04
Czech Republic : 00800 01 05 20 04
Estonia : 00800 01 05 20 04
Hungary : 00800 01 05 20 04
- fax: no
- email address: firstname.lastname@example.org
European Anti-Fraud Office
rue Joseph II, 30
Social Networking publicity
Blog / RSS
Financial Donation methods
Not Applicable - European Union government funded
Currently accepting submissions of whistleblower leaks ?
Leak Submission Encryption
Digital Certificate fingerprints published on their website:
Qualsys SSLLabs SSL Server Test rating:
Overall rating: C 
Protocol Support: 55
Key Exchange: 40
Cipher Strength: 60
Deprecated SSL version 2.0 protocol enabled. Weak 40bit and 56bit cipher key suites enabled. Insecure re-negotiation. Potentially vulnerable to Man-in-the-Middle and cipher strength downgrade attacks.
PGP Public Encryption Key
TOR Hidden Service
Hushmail Secure Form
Leak Submission Anonymity
TOR users blocked from access
3rd Party or persistent tracking cookies
CAPTCHA graphics generated from another website e.g. Google Re-Captcha
Does use a CAPTCHA, but this is generated ok from the same secure website as the web form.
Mixed mode non-SSL graphics or style sheets
Embedded video clips etc. from another website e.g. YouTube
Flash file uploader class
Communications / Acknowledgement back to the whistleblower via the website
Acknowledgement of receipt of information
e.g. file upload success indicator - has the leak message or upload actually been received successfully ?
Leak analysis work flow status reporting
Has anyone actually looked at what the whistleblower has submitted ?
Yes, if the Private Mailbox option is used
Private message box
e.g for 2 way communications back to the anonymous whistleblower, asking for clarification, offering advice etc.
Optionally allows a whistleblower to choose their own password and generates a randomly named private mailbox username. This is only enabled a few days after a whistleblower leak submission has been seen by an analyst and the account enabled.
Domain Name Resilience
Domain Name Registrar
Multiple Internet Service Providers, in different legal jurisdictions ?
Domain Name Server(s) & jurisdiction(s)
Domain Name Servers in the United Kingdom, Spain, Belgium and Luxembourg
Web Server hosting jurisdiction(s)
fns.olaf.europa.eu [184.108.40.206] is from Luxembourg(LU)
Alternate Domain Name aliases
Actual Physical Mirrors of the website:
Content available via BitTorrent etc P2P etc.